Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
File: PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft (raw, json)
Hash identifier: NonVDdPpExFbJfKMORVQO8J2UtcFujs0kdPygHt9ThA=
Subject key identifier: 46:9D:43:B8:1F:AB:44:FC:79:E4:F9:C3:18:86:F5:E6:21:FC:FF:DB
Authority key identifier: 3C:14:15:42:16:85:AC:E3:68:2F:16:1D:31:0D:92:72:6C:DF:B0:97
Certificate issuer: /CN=3c1415421685ace3682f161d310d92726cdfb097
Certificate serial: 018F874961E656C0D16929E9D7402D66CE1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
Manifest number: 1174
Signing time: Fri 17 May 2024 16:01:24 +0000
Manifest this update: Fri 17 May 2024 16:01:24 +0000
Manifest next update: Sat 18 May 2024 16:01:24 +0000
Files and hashes: 1: PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl (hash: kDRgM9k+9D5UTYAR2SEJgnZbes7Xr/KFwNgmK1e8128=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:61:e6:56:c0:d1:69:29:e9:d7:40:2d:66:ce:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c1415421685ace3682f161d310d92726cdfb097
Validity
Not Before: May 17 16:01:24 2024 GMT
Not After : May 18 16:01:24 2024 GMT
Subject: CN=469d43b81fab44fc79e4f9c31886f5e621fcffdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3e:33:88:f8:89:64:ef:b9:cf:19:43:a8:b0:
f0:ca:0b:5a:72:5e:9f:9e:41:d8:41:1f:d2:56:50:
78:42:03:a3:cf:90:94:86:df:b6:ab:34:35:35:d1:
27:50:87:fe:42:bf:1c:35:15:5c:44:dd:10:16:ce:
af:85:61:54:5e:94:05:7b:94:bc:30:92:e1:26:58:
bb:fa:13:ee:0b:95:c7:de:f8:31:75:19:05:9e:16:
c2:a2:36:de:d0:21:de:c3:df:07:6e:e5:1c:36:3f:
82:44:f5:86:08:b4:8c:8e:3b:6a:52:8b:09:32:de:
65:c9:a5:60:b7:07:2e:f0:ae:57:46:ea:bd:ea:81:
34:ee:c5:f9:ca:24:53:5a:71:d2:ee:11:21:c4:98:
1a:94:18:60:a3:ee:56:40:67:7d:88:22:24:a4:dd:
52:d4:5e:2a:30:61:22:f3:46:ac:63:fc:32:73:fa:
60:5f:41:70:d7:d5:7b:83:04:8b:55:03:33:76:85:
f8:0c:78:30:92:68:f7:00:eb:ca:54:cf:b6:09:be:
51:66:e8:ee:37:e0:fa:df:06:5c:69:80:cd:32:6e:
50:78:55:df:51:a3:b3:8f:1d:39:fc:77:9f:09:09:
dd:9a:7f:88:51:a7:e3:97:7d:5b:e3:39:f5:7a:6c:
d8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:9D:43:B8:1F:AB:44:FC:79:E4:F9:C3:18:86:F5:E6:21:FC:FF:DB
X509v3 Authority Key Identifier:
keyid:3C:14:15:42:16:85:AC:E3:68:2F:16:1D:31:0D:92:72:6C:DF:B0:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f9:11:aa:5b:24:72:52:1e:71:b0:fe:cc:15:e7:2d:31:82:
4d:0d:61:0a:3b:f2:a2:6a:ad:11:6b:e8:e4:d6:f9:47:da:ad:
1c:88:ac:6d:ae:33:cd:94:ed:07:0f:01:61:fa:dc:83:09:56:
cf:dd:75:97:ea:6c:af:67:0e:dd:22:89:5c:f5:92:e9:e3:b0:
dc:bd:6b:b4:bb:8b:ef:7e:5a:6f:e9:62:20:53:84:b2:a8:cb:
c7:35:a1:e7:18:5c:c9:ff:40:82:80:07:fc:ba:f8:23:4e:77:
d5:f1:ca:0e:88:8e:ec:3c:20:8a:92:4d:fa:89:60:04:d1:a5:
bd:d7:c5:5d:d6:c5:a8:9f:1b:81:16:a6:7e:a2:f6:bb:b7:22:
e6:71:a9:6a:05:0e:be:d8:3a:ea:96:ac:ba:2c:33:31:83:24:
d5:08:29:98:db:e8:1c:2e:8f:a5:da:38:6c:29:f7:28:44:0c:
42:e5:2c:5d:33:38:77:b6:67:af:ba:ed:16:e8:48:65:95:0f:
23:3a:a8:d5:7c:ea:ee:ce:02:23:f2:c7:7f:d9:07:e3:35:87:
56:8b:30:b3:fa:40:62:93:35:d6:68:d2:68:6c:9d:54:18:36:
81:e0:c2:5a:cc:d5:2a:79:da:0d:bb:b8:c7:09:e7:f3:b2:29:
8b:bc:21:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:09:21 2024 by rpki-client on console-fra.rpki-client.org